Report security issues privately by emailing maildoexe@gmail.com.
Please include:
- affected version or commit
- operating system
- reproduction steps
- impact
- any suggested mitigation
Security-sensitive areas include:
- serial device access
- filesystem operations on the MicroPython device
- local folder sync and delete behavior
- MCP and AI tool access
- bundled runtime packaging
Do not publish exploit details publicly until a fix or mitigation is available.